Sign in to G2 Crowd to see what your connections have to say about Logstash

What do you like best?

The regular expression based log parsers work really well. Immediate discovery of issues helps fixing the bugs very soon. You do not need to login to server and check the logs everytime. Logstash along with Kibana and elasticsearch works like a charm. You will get a holistic view of all your logs and your debugging starts here.

What do you dislike?

Its parsing is limited to the regular expressions. Should have some approximate matching with ML techniques which can help discover more issues. Writing custom grok regex patterns is a bit complex. The threshold for one time setup is a bit high and you need to have an initial understanding of the tools.

Recommendations to others considering the product

Use the complete ELK (Elasticsearch, Logstash and Kibana) stack for the best overview and experience. You can find nginx, apache, uwsgi grok rules easily online but you should have an initial hands on with grok parsing if you want to have some custom parsing.

What business problems are you solving with the product? What benefits have you realized?

It helps developers discover and manage bugs very quickly. The no of incidents that are occurring can be monitored and helps decide that priority on which the issues needs to be worked upon. App monitoring and backend team's efficiency increases a lot with this tool since they don't have to spend a lot of time discovering the bugs.

What do you like best?

It's a very versatile log processor with a very supportive community. It also comes with ample of plugins that's very useful. The GROK filter plugin contains prebuild regular expression that supports common software log patterns to get you up and running quickly.

What do you dislike?

There is a learning curve like all software. It has its own syntax and requires java run time. It's a memory hungry software for being a java app.

What business problems are you solving with the product? What benefits have you realized?

This is implemented with elasticsearch, kibana and logstash commonly known as the ELK stack for log management and anomaly detection for future implementation.

What do you like best?

Very supportive community to reach out with issues. I also like their grok feature to do basic regex searches to convert some of my unstructured data into structured data and gives more visibility into my application logs.

Last but not least, it's open source so it’s simple to extend it to custom log formats or add plugins for custom data sources.

What do you dislike?

It took me a while to set Logstash correctly and run it reliably without running into any issues. I would often get out of memory issues and even after increasing system RAM, I would run into this issue. I finally figured out the issue after much searching around but it was not immediately clear what caused the issue. Documentation is good but as with any open source tool, it is not as extensive or complete as one would wish.

What business problems are you solving with the product? What benefits have you realized?

We use logstash as ELK stack to monitor and search our logs in production environment to detect potential issues with our applications.

It has also helped us to monitor logs for our large scale crawlers that we have deployed for our product.

Learning about Logstash?

* We monitor all Logstash reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.